I am sure everyone knows about client VPN connection drama. Inour testing we ‘feel’ that Data Encryption settings being other than the ‘Require encryption (disconnect if declines)’ has more success rate. Does anyone know if other settings like ‘Optional encryption (connect even if no encryption)’ pose any security risk?
Despite the name “Unencrypted PAP”, the client’s password is sent encrypted over an IPsec tunnel between the client device and the MX. The password is fully secure and never sent in clear text over either the WAN or the LAN.
https://documentation.meraki.com/MX/Client_VPN/Client_VPN_OS_Configuration#Windows_10
Then why the documentation asked to configure ‘Require encryption…’ Isn’t it moot? It’s useless don’t you think?
I wonder what’s the Data Encryption settings refers to?
Not an answer but the best part is it says under the XP settings to select Optional instead of Required.